$ rpki-client -vvf rpki-rsync.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138342e302f32342d3234203d3e20313432333231.roa File: 3130332e3136382e3138342e302f32342d3234203d3e20313432333231.roa (raw, json) Hash identifier: zy5sZmIYWuhArw5qUK3omGx2zQq1A547YaMk3Zf3tqs= Subject key identifier: EE:B7:06:7F:69:CB:A8:37:04:26:B7:E1:5C:0C:AE:B1:A8:4B:3B:9F Certificate issuer: /CN=19B95601293E4FA827B74012327843B2622893C0 Certificate serial: 78D85B7F703A4AB9D20CB096BE752D5F7187842C Authority key identifier: 19:B9:56:01:29:3E:4F:A8:27:B7:40:12:32:78:43:B2:62:28:93:C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19B95601293E4FA827B74012327843B2622893C0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138342e302f32342d3234203d3e20313432333231.roa Signing time: Sun 03 May 2026 02:44:20 +0000 ROA not before: Sun 03 May 2026 02:39:20 +0000 ROA not after: Sun 02 May 2027 02:44:20 +0000 asID: 142321 IP address blocks: 103.168.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/19B95601293E4FA827B74012327843B2622893C0.crl rsync://rpki-rsync.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/19B95601293E4FA827B74012327843B2622893C0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19B95601293E4FA827B74012327843B2622893C0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 13:33:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:d8:5b:7f:70:3a:4a:b9:d2:0c:b0:96:be:75:2d:5f:71:87:84:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19B95601293E4FA827B74012327843B2622893C0 Validity Not Before: May 3 02:39:20 2026 GMT Not After : May 2 02:44:20 2027 GMT Subject: CN=EEB7067F69CBA8370426B7E15C0CAEB1A84B3B9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:dd:ea:a2:74:a5:40:ed:70:31:d6:7d:14:fc: 4d:8e:3d:ac:d7:5b:0c:9f:27:0f:fd:a5:69:4c:7f: 98:88:e4:43:0e:b0:55:63:0b:5a:a9:99:f5:2e:3a: 2b:8a:d9:2c:5a:f7:62:77:1a:28:50:94:43:e2:e8: c8:89:2c:39:e6:22:f2:f3:91:26:e0:2e:b0:f8:2c: 36:cb:85:1f:91:99:e3:5f:25:e8:cb:a1:6f:c0:e7: 44:03:0a:c7:6f:dd:c5:08:a2:b8:8b:9b:86:a6:bd: ae:ce:43:58:cd:b5:89:dc:20:00:f6:17:c6:64:2e: 8d:90:a9:89:61:dd:92:85:62:8d:02:05:58:04:32: 53:6e:33:ee:b9:7d:27:07:7e:cd:f7:c5:77:d8:ca: dc:48:1e:5d:9d:59:ed:a7:31:cb:2a:52:c1:c6:b8: 52:ad:fc:10:b8:1b:ff:e3:7a:d0:a0:de:7d:00:b2: 28:b7:af:40:bb:15:54:89:a5:4b:20:af:22:e2:cf: bc:cb:8f:77:e1:e4:a3:e9:3d:ef:d9:6a:47:b6:99: 04:b2:34:8a:95:ff:b4:7f:2a:e3:6c:2b:17:29:b1: 0a:1e:5a:b9:85:fc:66:af:b4:76:49:09:79:9a:98: 7c:67:41:4d:d7:9e:72:bb:eb:13:07:18:d1:82:cc: 7b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:B7:06:7F:69:CB:A8:37:04:26:B7:E1:5C:0C:AE:B1:A8:4B:3B:9F X509v3 Authority Key Identifier: keyid:19:B9:56:01:29:3E:4F:A8:27:B7:40:12:32:78:43:B2:62:28:93:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/19B95601293E4FA827B74012327843B2622893C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19B95601293E4FA827B74012327843B2622893C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138342e302f32342d3234203d3e20313432333231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.184.0/24 Signature Algorithm: sha256WithRSAEncryption a1:6f:54:58:11:c5:d9:80:59:c2:fa:14:9c:aa:0c:0f:4f:57: a0:9d:8a:75:71:59:f8:2b:5f:88:ed:8a:83:58:5a:f8:70:62: 9e:14:25:fe:a3:0e:c0:9e:84:43:4c:01:ac:99:1f:99:ab:9b: 7f:2e:12:3d:8c:33:dd:c5:38:e7:5f:88:ef:4a:38:c1:38:4a: 7c:57:ed:d6:e4:fc:75:d4:b5:e3:f3:6a:4a:c3:d1:0c:a4:25: 73:f9:64:a6:42:18:52:9a:21:ef:55:dd:c0:da:06:53:e5:3c: 4b:3d:8a:3c:3b:78:3f:32:3d:61:de:66:8a:e2:b2:9c:2d:bf: ec:2b:a7:74:12:a7:4d:87:22:57:41:cb:f1:cf:5e:a3:2b:71: 6b:fb:38:e8:1a:9d:aa:fd:ee:79:09:34:aa:33:23:13:63:ea: 71:fc:2f:af:ec:74:94:c3:e5:d8:9b:cd:c6:ec:c0:03:6f:1a: 1b:db:44:a8:a5:18:59:80:ad:c6:56:78:2c:bd:c5:fb:a4:de: 3b:ee:32:ff:bd:cb:22:12:bc:c2:bb:17:8a:b3:d1:79:27:8a: 4c:e8:b8:69:a8:a0:62:50:fb:34:3b:5d:23:f1:93:0d:b1:a5: 09:48:6a:09:80:ef:fb:56:50:11:7f:fd:03:64:17:be:c0:7a: cc:f3:dd:90 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeNhbf3A6SrnSDLCWvnUtX3GHhCwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTlCOTU2MDEyOTNFNEZBODI3Qjc0MDEyMzI3ODQzQjI2 MjI4OTNDMDAeFw0yNjA1MDMwMjM5MjBaFw0yNzA1MDIwMjQ0MjBaMDMxMTAvBgNV BAMTKEVFQjcwNjdGNjlDQkE4MzcwNDI2QjdFMTVDMENBRUIxQTg0QjNCOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK3eqidKVA7XAx1n0U/E2OPazX WwyfJw/9pWlMf5iI5EMOsFVjC1qpmfUuOiuK2Sxa92J3GihQlEPi6MiJLDnmIvLz kSbgLrD4LDbLhR+RmeNfJejLoW/A50QDCsdv3cUIoriLm4amva7OQ1jNtYncIAD2 F8ZkLo2QqYlh3ZKFYo0CBVgEMlNuM+65fScHfs33xXfYytxIHl2dWe2nMcsqUsHG uFKt/BC4G//jetCg3n0Asii3r0C7FVSJpUsgryLiz7zLj3fh5KPpPe/Zake2mQSy NIqV/7R/KuNsKxcpsQoeWrmF/GavtHZJCXmamHxnQU3XnnK76xMHGNGCzHupAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7rcGf2nLqDcEJrfhXAyusahLO58wHwYDVR0j BBgwFoAUGblWASk+T6gnt0ASMnhDsmIok8AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzhlNzhlZTAtMDAwMi00YTY3LWE3MzktMzAzM2Q1YjViYTYxLzAvMTlCOTU2MDEy OTNFNEZBODI3Qjc0MDEyMzI3ODQzQjI2MjI4OTNDMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xOUI5NTYwMTI5M0U0RkE4MjdCNzQwMTIzMjc4NDNCMjYyMjg5 M0MwLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzc4ZTc4ZWUwLTAwMDItNGE2Ny1h NzM5LTMwMzNkNWI1YmE2MS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM4MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqLgwDQYJ KoZIhvcNAQELBQADggEBAKFvVFgRxdmAWcL6FJyqDA9PV6CdinVxWfgrX4jtioNY WvhwYp4UJf6jDsCehENMAayZH5mrm38uEj2MM93FOOdfiO9KOME4SnxX7dbk/HXU tePzakrD0QykJXP5ZKZCGFKaIe9V3cDaBlPlPEs9ijw7eD8yPWHeZorispwtv+wr p3QSp02HIldBy/HPXqMrcWv7OOganar97nkJNKozIxNj6nH8L6/sdJTD5dibzcbs wANvGhvbRKilGFmArcZWeCy9xfuk3jvuMv+9yyISvMK7F4qz0XknikzouGmooGJQ +zQ7XSPxkw2xpQlIagmA7/tWUBF//QNkF77Aeszz3ZA= -----END CERTIFICATE-----Generated at Tue May 5 19:02:39 2026 by rpki-client